Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft
File:                     IWrR11qT4DeulPbJGJbS1YLY_1Q.mft (raw, json)
Hash identifier:          /k0D54z288jF/cKXudKV74WXBRxY9iTuC4wUmkega6E=
Subject key identifier:   97:E8:AE:23:DD:52:BD:3B:13:AC:8D:6B:50:AC:FB:E4:04:8C:1F:EF
Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54
Certificate issuer:       /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54
Certificate serial:       017E
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft
Manifest number:          0170
Signing time:             Mon 21 Jul 2025 03:56:52 +0000
Manifest this update:     Mon 21 Jul 2025 03:56:52 +0000
Manifest next update:     Mon 28 Jul 2025 03:56:52 +0000
Files and hashes:         1: IWrR11qT4DeulPbJGJbS1YLY_1Q.crl (hash: NSSMKmyChde3hA3/5b+OtvZctJl0Z7dv6Mxchy8iZ84=)
                          2: 838096CA3BD311EE84056461C4F9AE02.roa (hash: MRW+pxq2rIQWqz0eewlHDxgHTLGzIYysThVYJrp2BDc=)
                          3: 27DB37683BD211EE8094355FC4F9AE02.roa (hash: Fv5yzaRaYXm7EcaxJ9d0RT5up4myTdlO4UPvIXp3L88=)
                          4: 82C54A1E3BD311EE84056461C4F9AE02.roa (hash: mGJXgF/PKI9FEq/cPxsdqAyVl2gi74HVL2n1gwNWhDo=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl
                          rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 28 Jul 2025 03:56:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 382 (0x17e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54
        Validity
            Not Before: Jul 21 03:56:52 2025 GMT
            Not After : Jul 28 03:56:52 2025 GMT
        Subject: CN=687dba84-678b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:77:e0:bb:67:8d:f0:52:c0:8f:3d:0b:14:f2:
                    ae:a6:d1:1a:84:2e:80:2a:52:6b:a8:dc:46:be:d2:
                    f5:22:45:cb:0c:49:8c:bd:f2:50:c3:6c:61:14:a5:
                    59:8d:b9:b9:a6:6b:f0:89:6c:cf:0f:7c:77:19:e1:
                    ab:12:22:fe:3a:65:75:42:12:fd:66:27:3d:33:1e:
                    7c:ec:76:3a:3f:2c:0f:05:ac:4c:47:3d:d9:70:d3:
                    46:f7:e1:35:0c:5a:43:36:8a:15:ae:6c:c3:3b:fe:
                    9d:4e:d6:51:ef:eb:e9:07:20:5f:a0:7d:5a:8f:84:
                    c6:a6:d0:bf:a5:74:b1:7d:1d:7d:0b:ac:e1:bd:97:
                    4d:7b:f3:56:bb:23:f0:80:6d:3c:83:dc:e3:ce:82:
                    43:34:9a:36:cd:33:13:27:0f:48:19:43:16:7b:5a:
                    ed:5f:91:5c:0a:b5:fb:b1:a0:09:81:11:26:f0:c6:
                    f4:a5:eb:36:84:f4:3e:80:3e:86:8d:cd:5f:87:18:
                    3e:a1:85:f8:92:c2:12:15:c8:c3:0b:42:8e:21:5f:
                    92:19:71:19:55:fa:b4:c2:70:10:75:0c:20:13:90:
                    35:74:3c:9a:59:63:88:e2:1b:f2:32:29:ae:0e:46:
                    2e:4a:ab:b1:9a:72:28:39:a1:50:8c:ce:65:01:92:
                    0a:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:E8:AE:23:DD:52:BD:3B:13:AC:8D:6B:50:AC:FB:E4:04:8C:1F:EF
            X509v3 Authority Key Identifier:
                keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:d6:36:20:12:e4:18:de:b4:2a:12:53:37:28:77:f5:65:77:
         6a:cb:1a:56:1c:7a:f3:24:da:d6:27:af:16:20:bc:44:60:a1:
         be:29:89:ba:ed:41:e5:c9:28:a3:b7:77:17:52:37:92:a1:84:
         59:6e:a2:06:11:75:bd:34:fc:5c:e9:15:ee:08:35:cd:fc:48:
         3d:c4:59:78:a4:e8:af:89:f3:c1:6b:17:a8:f3:96:6b:fc:72:
         b6:71:9e:79:e6:a2:96:ba:f1:d3:71:7a:eb:f3:e1:6b:2a:f5:
         73:1e:2a:a6:cc:47:32:3a:d6:be:31:73:43:0f:0d:18:bd:95:
         cd:53:ab:cc:d3:64:28:1b:5a:b2:8f:a6:04:b2:0b:55:ea:9e:
         47:49:d0:18:07:1a:80:2d:cd:c7:85:75:45:be:f4:8f:d3:ec:
         c6:e5:01:28:82:ba:1f:2a:ed:7b:1c:63:9c:2a:72:21:ee:94:
         7e:9c:4a:a2:48:f3:1f:d6:27:e0:67:67:6e:3e:11:fd:b5:f5:
         bb:61:04:fc:8b:9a:38:3e:04:69:bb:fd:26:4c:62:a5:8e:4d:
         2e:dd:6c:7a:12:da:ce:ec:47:d0:f8:c1:d8:bc:70:90:cf:19:
         eb:c6:76:c7:cb:a0:e4:78:03:70:97:95:a8:21:ba:3a:18:fe:
         d7:6b:c0:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 02:22:50 2025 by rpki-client